CVE-2021-21750
HIGH WAF: Low
CVSS 7.8
Published: 2021-12-27
CWE-269
ZTE BigVideo Analysis product has a privilege escalation vulnerability. Due to improper management of the timed task modification privilege, an attacker with ordinary user permissions could exploit this vulnerability to gain unauthorized access.
WAF Coverage Analysis
Improper Privilege Management
Low WAF Coverage
OWASP: A01:2021 Broken Access Control
Affected Software
| Vendor | Product | Version |
|---|---|---|
| zte | zxin10_cms | up to 3.01.01.04 |
References
- support.zte.com.cn (Vendor Advisory)